Best Practices for Cybersecurity Breaches

Uploaded on 2015-10-15 in TECHNOLOGY--Hackers, NEWS-Cybersecurity News, FREE TO VIEW

The PCI Security Standards Council has announced new guidelines to help organizations respond to data breaches.

“Responding to a Data Breach: A How-to Guide for Incident Management” provides retailers and service providers with key recommendations so they can be prepared to react quickly if a breach is suspected. It specifically suggests what they should do to contain damage and launch an effective investigation.

The guide was developed in collaboration with the Payment Card Industry (PCI) Forensic Investigators (PFI) community. The PCI Security Standards Council is a global forum responsible for the development, management, education, and awareness of the PCI Data Security Standard and other standards that increase payment data security.
“The silver lining to high-profile breaches that have occurred is that there is a new sense of urgency that is translating into security vigilance from the top down, forcing businesses to prioritize and make data security business-as-usual,” Stephen W. Orfei, PCI SSC general manager, said in a statement.
“Prevention, detection and response are always going to be the three legs of data protection,” Orfei said. “Better detection will certainly improve response time and the ability to mitigate attacks, but managing the impact and damage of compromise comes down to preparation, having a plan in place and the right investments in technology, training and partnerships to support it.”

PCISecurity: http://bit.ly/1Oz2rTL
Info-Management: http://bit.ly/1MvUkYb

« Blackphone: Privacy-obsessed Smartphone

Malware: Banks, Customers and ATMs All Under Fire »

Infosecurity Europe

CyberSecurity Jobsite

Perimeter 81

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

IP Performance

IP Performance Limited is a leading supplier of customised network infrastructure and security solutions.

Logpoint

Logpoint is a creator of innovative security platforms to empower security teams in accelerating threat detection, investigation and response with a consolidated tech stack.

CONCERT

CONCERT is a Computer Emergency Response Team and cyber security information sharing network for companies, institutes and government in Korea.

Detack

Detack is an independent supplier of IT security auditing and consulting services.

Advanced Software Products Group (ASPG)

ASPG offers a wide range of innovative mainframe software solutions for Data Security, Access Management, System Management and CICS productivity.

C3.ai

The C3 AI Suite supports configurable, pre-built, high value AI applications for predictive maintenance, fraud detection, anti-money laundering, sensor network health and more.

La Fosse Associates

The InfoSec Recruitment team at La Fosse Associates specialises in placing Information Security & Risk professionals on a permanent and contract basis.

Splone

Splone is a Berlin-based IT security research team and consultancy. We help improve IT-security by offering red team assements, penetration tests, audits and customized consulting.

Netpoleon Group

Netpoleon is a leading provider of integrated security, networking solutions and value added services.

Cybolt

Cybolt helps companies, organizations, and governments manage digital risks and live in an environment of confidence and certainty.

CyberX9

CyberX9 helps you protect against a wide range of cyber attacks whether you are a business or a high-net worth individual under risk.

FortiGuard Labs

FortiGuard Labs is the threat intelligence and research organization at Fortinet. Its mission is to provide Fortinet customers with the industry’s best threat intelligence.

Harbor Networks

Harbor Networks is a communications systems integrator and managed services provider. We provide business consultation services for voice and data communication technology.

PixelQA

Are you looking for a security testing company to cross-check whether your software or mobile app has a possible security threat or not?

CaseMatrix

Discover a new era of legal intelligence with CaseMatrix. We identify potential class action cases arising from cyber incidents and data breaches.

Aspiron Search

Aspiron Search is a niche-focused Cybersecurity search firm that works exclusively with venture-backed Cybersecurity firms.